KB Article #177893

API Portal 7.4.1 Patch 4 README

API Portal 7.4.1 Patch 4 README

The patch fixes the following issue:

• Several XSS vulnerabilities in API Portal

Before, some of the fields in API Portal displaying user names, organization names, API descriptions, and monitoring information, were vulnerable to XSS attacks.

Now the fields are not vulnerable.

Installation

The patch is delivered as an rpm file apiportal-7.4.1-apiportal-3.x86_64.rpm

This can be installed through a browser with Webmin port 10000 on the Axway Appliance.

Software Update Management->APIPortal Updates then "check update" and "update API Portal Software" with "apiportal-7.4.1-3"

also it can be installed with Zypper command line from root

# zypper up apiportal